Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 351724 (CVE-2010-4337) - www-plugins/gnash: Symlink attack vulnerability in configure script (CVE-2010-4337)
Summary: www-plugins/gnash: Symlink attack vulnerability in configure script (CVE-2010...
Status: RESOLVED FIXED
Alias: CVE-2010-4337
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High minor (vote)
Assignee: Gentoo Security
URL: https://bugzilla.redhat.com/show_bug....
Whiteboard: B3 [noglsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2011-01-15 05:10 UTC by Tim Sammut (RETIRED)
Modified: 2011-02-23 22:39 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Tim Sammut (RETIRED) gentoo-dev 2011-01-15 05:10:53 UTC 
From the Red Hat bug at $URL:

Name: CVE-2010-4337
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4337
Assigned: 20101130
Reference: MISC: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605419
Reference: BID:45102
Reference: URL: http://www.securityfocus.com/bid/45102
Reference: OSVDB:69533
Reference: URL: http://www.osvdb.org/69533
Reference: SECUNIA:42416
Reference: URL: http://secunia.com/advisories/42416

The configure script in gnash 0.8.8 allows local users to overwrite
arbitrary files via a symlink attack on the (1)
/tmp/gnash-configure-errors.$$, (2) /tmp/gnash-configure-warnings.$$,
or (3) /tmp/gnash-configure-recommended.$$ files.
Comment 1 Chí-Thanh Christopher Nguyễn gentoo-dev 2011-01-17 16:00:25 UTC 
Fixed in gnash-0.8.8.ebuild without revbump, as this does not affect users who have gnash already installed.
Comment 2 Tim Sammut (RETIRED) gentoo-dev 2011-01-17 16:45:07 UTC 
(In reply to comment #1)
> Fixed in gnash-0.8.8.ebuild without revbump, as this does not affect users who
> have gnash already installed.
> 

Thank you.

GLSA Vote: No.
Comment 3 Stefan Behte (RETIRED) gentoo-dev Security 2011-01-21 11:16:00 UTC 
CVE-2010-4337 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4337):
  The configure script in gnash 0.8.8 allows local users to overwrite
  arbitrary files via a symlink attack on the (1)
  /tmp/gnash-configure-errors.$$, (2) /tmp/gnash-configure-warnings.$$,
  or (3) /tmp/gnash-configure-recommended.$$ files.
Comment 4 Stefan Behte (RETIRED) gentoo-dev Security 2011-02-23 22:39:32 UTC 
Vote: NO. Very unlikely to be every exploited in real life. Closing noglsa.